zxkane · December 13, 2023 02:21
diff --git a/1.sh b/1.sh
 # install tools
 pip3 install certbot acme certbot-dns-route53

 #
 export DOMAIN_NAME=clickstream.example.com
 export CERT_NAME=$DOMAIN_NAME-$(/bin/date +%s)

 # request fress SSL cert via DNS chanllege
 certbot certonly --dns-route53 -d $DOMAIN_NAME --email [email protected] --agree-tos --non-interactive --work-dir ./ --logs-dir ./ --config-dir ./ -v

 # upload cert to IAM
 aws iam upload-server-certificate --server-certificate-name $CERT_NAME --certificate-body file:/live/$DOMAIN_NAME/cert.pem --private-key file:/live/$DOMAIN_NAME/privkey.pem --certificate-chain file:/live/$DOMAIN_NAME/chain.pem --path /cloudfront/clickstream/ | jq '.ServerCertificateMetadata.ServerCertificateId' --raw-output
	# install tools
	pip3 install certbot acme certbot-dns-route53

	#
	export DOMAIN_NAME=clickstream.example.com
	export CERT_NAME=$DOMAIN_NAME-$(/bin/date +%s)

	# request fress SSL cert via DNS chanllege
	certbot certonly --dns-route53 -d $DOMAIN_NAME --email [email protected] --agree-tos --non-interactive --work-dir ./ --logs-dir ./ --config-dir ./ -v

	# upload cert to IAM
	aws iam upload-server-certificate --server-certificate-name $CERT_NAME --certificate-body file:/live/$DOMAIN_NAME/cert.pem --private-key file:/live/$DOMAIN_NAME/privkey.pem --certificate-chain file:/live/$DOMAIN_NAME/chain.pem --path /cloudfront/clickstream/ \| jq '.ServerCertificateMetadata.ServerCertificateId' --raw-output